AMENDMENTS TO THE CLAIMS 



This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims: 

1 1 . (Currently amended) A method for sharing an active secure 

2 communication session with a cli e nt b e tw e en a plurality of servers , the method 

3 comprising: 

4 receiving a first message from the-£Lclient at a first server^ in th e plurality 

5 of s e rv e rs, wherein the first message including includes a session identifier that 

6 id e ntifi e s is associated with a n active secure communication session with-between 

7 the client and a second server which is different from the first serven -aftd 

8 retrieving state information using the session identifier, wherein the state 

9 information is retrieved by the first server from a database, wherein the state 

10 information includes a running message digest, wherein the second server updated 

11 the running message digest at the database as messages passed through the active 

12 secure communication session between the client and the second server, and 

13 wherein the database, the client, the first server, and the second server are 

14 different from one another; and 

15 using the state information to send a second message from the first server 

16 to the client through the active secure communication session. 

17 if th e s e ssion identifi e r do e s not corr e spond to an activ e secure 

18 communication session on th e first server, e stablishing an activ e secure 

19 communication s e ssion with th e cli e nt on th e first s e rver by, 

20 att e mpting to r e trieve state information associat e d with the 

21 s e ssion id e ntifi e r for an active s e cure communication session 
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22 b e tw e en the cli e nt and a s e cond s e rv e r, wh e r e in tho state 

23 information is r e triev e d from a third server which is diff e r e nt from 

24 th e cli e nt, wherein th e stat e information includ e s a s e ssion 

25 encryption k e y associat e d with th e active s e cur e communication 

26 s e ssion betw ee n the cli e nt and th e s e cond s e rver, wh e r e in th e first 

27 s e rv e r is diff e r e nt from th e s e cond s e rv e r, 

28 if th e state information for th e activ e s e cur e communication 

29 s e ssion is r e tri e v e d, using tho stat e information including the 

30 e ncryption k e ys to shar e th e activ e secure communication session 

31 e stablish e d between th e cli e nt and th e s e cond s e rv e r for subs e quent 

32 communications betw ee n tho cli e nt and the first s e rver without 

33 having to s e t up a n e w s e cur e communication s e ssion between tho 

34 cli e nt and th e first s e rv e r, wherein th e state information is purg e d 

35 from th e s e cond serv e r after th e state information is r e trieved by 

36 the first s e rv e r, and 

37 if th e state information for th e activ e secur e communication 

38 s e ssion is not retriev e d, communicating with the cli e nt to establish 

39 th e activ e s e cur e communication s e ssion with tho client. 

1 2-8. (Canceled). 

1 9. (Original) The method of claim 1, further comprising initially 

2 establishing an active secure communication session between the client and the 

3 second server, the active secure communication session being identified by the 

4 session identifier. 
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10. (Currently amended) The method of claim 1, wherein att e mpting to 
retrievinge the state information includes authenticating and authorizing the first 
server. 

11-12 (Canceled). 

13. (Currently amended) A computer-readable storage medium storing 
instructions that when executed by a computer cause the computer to perform a 
method for sharing an active secure communication sessio n with a client betw e en 
a plurality of s e rvers , the method comprising: 

receiving a first message from the-a_client at a first server ^ in th e plurality 
of s e rvers, wherein the first message including includes a session identifier that 
id e ntifies is associated with a n active secure communication session wkh -between 
the client and a second server which is different from the first server ^and 

retrieving state information using the session identifier, wherein the state 
information is retrieved by the first server from a database, wherein the state 
information includes a running message digest, wherein the second server updated 
the running message digest at the database as messages passed through the active 
secure communication session between the client and the second server, and 
wherein the database, the client, the first server, and the second serve are different 
from one another; and 

using the state information to send a second message from the first server 
to the client through the active secure communication session. 

i£th^ s e ssion id e ntifier does not correspond to an activ e s e cure 
communication s e ssion on the first serv e r, e stablishing an active secure 
communication session with th e client on th e first s e rver by, 

att e mpting to r e trieve stat e information associated with the 
session identifier for an active secure communication session 

4 
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23 b e tw ee n th e cli e nt and a second s e rv e r, wh e r e in th e state 

24 information is r e triev e d from a third server which is diff e rent from 

25 th e cli e nt, wh e r e in the state information includes a session 

26 e ncryption k e y associated with th e active s e cur e communication 

27 s e ssion betw ee n the cli e nt and th e s e cond s e rv e r, wh e rein the first 

28 s e rver is diff e rent from th e second server, 

29 if th e stat e information for the activ e secur e communication 

30 s e ssion is r e tri e ved, using th e stat e information including the 

31 e ncryption keys to shar e the activ e s e cure communication session 

32 e stablished between th e cli e nt and th e second s e rver for subsequent 

33 communications betw ee n the cli e nt and the first server without 

34 having to s e t up a new s e cure communication session b e tween the 

35 cli e nt and th e first serv e r, wh e r e in th e state information is purged 

36 from the second server after the stat e information is retri e v e d by 

37 th e first s e rv e r, and 

38 if th e stat e information for the activ e secur e communication 

39 s e ssion is not r e trieved, communicating with the client to establish 

40 th e activ e s e cure communication s e ssion with the client. 

1 14-20. (Canceled). 

1 21. (Original) The computer-readable storage medium of claim 13, 

2 wherein the method further comprises initially establishing an active secure 

3 communication session between the client and the second server, the active secure 

4 communication session being identified by the session identifier. 
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22. (Currently amended) The computer-readable storage medium of claim 
13, wherein att e mpting to retrievinge the state information includes authenticating 
and authorizing the first server. 

23-24 (Canceled). 

25. (Currently amended) An apparatus that shares a secure communication 
session with a client between a plurality of servers, comprising: 

a receiving mechanism configured to receive a first message from a client 
at a first server, wherein the first message includes a session identifier that is 
associated with an active secure communication session between the client and a 
second server which is different from the first server: , at a first serv e r in the 
plurality of serv e rs, that r e c e iv e s a m e ssag e from the client, the m e ssag e including 
a s e ssion id e ntifi e r that id e ntifi e s a s e cur e communication s e ssion with th e client; 

a retrieving mechanism configured to retrieve state information using the 
session identifier, wherein the state information is retrieved by the first server 
from a database, wherein the state information includes a running message digest, 
wherein the second server updated the running message digest at the database as 
messages passed through the active secure communication session between the 
client and the second server, and wherein the database, the client, the first server, 
and the second server are different from one another; and 

a sending mechanism configured to use the state information to send a 
second message from the first server to the client through the active secure 
communication session. 

an e xamination m e chanism that e xamin e s th e s e ssion identifier; and 

a s e ssion initialization m e chanism, on th e first s e rver, wherein if the 
s e ssion id e ntifi e r do e s not corr e spond to an activ e s e cur e communication s e ssion 
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22 on th e first s e rv e r, the s e ssion initialization m e chanism is configur e d to e stablish 

23 an activ e s e cur e communication s e ssion with the cli e nt by, 

24 att e mpting to retriev e stat e information associat e d with th e 

25 session identifier for an activ e s e cur e communication s e ssion 

26 b e tw ee n th e cli e nt and a s e cond s e rv e r, wh e r e in the state 

27 information is r e tri e v e d from a third serv e r which is diff e r e nt from 

28 the cli e nt, wh e rein th e stat e information includ e s a s e ssion 

29 e ncryption k e y associat e d with th e activ e s e cur e communication 

30 s e ssion b e tw ee n th e cli e nt and th e s e cond s e rv e r, wh e r e in th e first 

31 s e rv e r is diff e r e nt from the s e cond s e rver, 

32 if th e stat e information for the activ e s e cur e communication 

33 session is r e triev e d, using the stat e information including the 

34 e ncryption k e ys to share th e activ e s e cur e communication session 

35 e stablish e d b e tw ee n th e cli e nt and th e s e cond s e rv e r for subs e qu e nt 

36 communications b e tw ee n th e cli e nt and th e first s e rv e r without 

37 having to s e t up a n e w s e cur e communication session b e tween the 

38 cli e nt and th e first s e rv e r, and 

39 if th e state information for th e activ e s e cur e communication 

40 session is not r e trieved, communicating with th e client to e stablish 

41 th e activ e s e cure communication session with th e client. 

1 26-32. (Canceled) 

1 33. (Currently amended) The apparatus of claim 25, wherein the s e ssion 

2 initializatio nr etrieving mechanism is configured to authenticate and authorize the 

3 first server prior to r e c e iving r etrieving t he state information. 

1 34-35 (Canceled). 
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